Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
File: 8o-houRJGJHBmw8QsIb2VZhPWHk.mft (raw, json)
Hash identifier: ILYtoSXg9vYNWPzJvYEnDvR5wTu8ok/HZv1NLYzTHH0=
Subject key identifier: 2F:76:D5:39:DF:F3:53:05:0E:F5:BA:EF:09:39:5A:BE:0F:CA:27:B3
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 0196534910DA1B6E47D758594E02FC480930
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
Manifest number: 094E
Signing time: Sun 20 Apr 2025 13:00:19 +0000
Manifest this update: Sun 20 Apr 2025 13:00:19 +0000
Manifest next update: Mon 21 Apr 2025 13:00:19 +0000
Files and hashes: 1: 8o-houRJGJHBmw8QsIb2VZhPWHk.crl (hash: /Tw6z3L/oogMnKjvVA4bKC4VVf/LXUKS3/4IMi6iJKU=)
2: IAJBt24rgV_us-DgHGqft-brDOM.roa (hash: EYG4N8j/B/VmDjgrJQXF6wEvv1LkIhmvGFmYVI9Ke7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:10:da:1b:6e:47:d7:58:59:4e:02:fc:48:09:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Apr 20 13:00:19 2025 GMT
Not After : Apr 21 13:00:19 2025 GMT
Subject: CN=2f76d539dff353050ef5baef09395abe0fca27b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:ce:a2:19:67:8c:6a:df:40:7d:06:88:c6:
4f:af:35:4b:e8:f8:75:76:87:00:9c:71:04:60:07:
21:3b:1c:c1:6a:e1:29:91:54:c5:79:19:63:2f:ed:
b3:31:fc:c2:4c:fc:09:bb:f5:cf:ce:89:5e:63:3e:
55:e9:57:a5:23:54:ef:1e:dd:a4:1d:ef:79:ea:ed:
65:ca:6b:c6:a3:71:f5:45:1f:59:47:4f:ed:d0:0e:
30:4a:7c:09:72:cb:7c:63:96:c5:a6:c3:88:ef:ee:
25:ce:2e:be:47:b4:c8:12:76:c8:7d:04:e6:80:6d:
c7:6a:c6:d2:63:c5:a4:ff:ae:bb:cd:f4:a2:d6:03:
3b:8c:a4:13:f1:2a:35:8b:85:4a:07:21:8f:39:3c:
13:1c:8f:07:b4:e8:6d:66:32:c0:1f:3d:86:7a:59:
e5:d6:f4:1b:ae:6e:c4:f3:10:97:37:cb:6f:91:88:
51:38:20:72:46:0e:b2:08:12:c9:68:01:3f:3a:09:
10:92:d0:48:6a:96:1d:9d:2f:dd:db:83:34:20:ab:
fe:c5:47:4e:21:f6:61:a6:1c:3b:55:3e:1e:d6:ac:
8e:dd:44:7d:60:f0:3d:79:c4:7d:cc:98:35:33:fd:
16:18:e3:56:57:20:35:8b:9c:4c:db:16:6b:45:ef:
df:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:76:D5:39:DF:F3:53:05:0E:F5:BA:EF:09:39:5A:BE:0F:CA:27:B3
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:85:de:25:78:0b:ce:ff:39:83:19:33:d9:c2:81:3c:b9:f4:
0d:23:9e:5f:10:f1:96:00:d3:89:c0:2e:87:fb:38:b6:f6:1e:
c3:67:9a:a4:18:7a:a0:9b:80:52:a2:2d:81:51:d8:d8:9a:8e:
e5:15:f7:6e:61:7e:3d:a9:f5:79:a7:2e:ed:55:8a:f2:55:87:
bf:fb:d9:40:e6:ad:67:3c:2b:57:5a:41:fc:70:bb:8c:36:8c:
f9:df:77:17:71:43:7c:b4:e7:e6:ca:33:8b:98:de:9b:f6:72:
c9:0a:91:26:aa:f3:92:7c:9b:f8:cd:f8:88:bb:cc:e4:35:62:
7c:45:ad:31:30:b8:5c:aa:01:43:d6:42:00:87:b5:50:cd:0c:
c6:9d:fa:05:04:88:8e:4d:6a:c9:e9:40:01:33:cc:45:91:0c:
91:46:98:6c:58:0b:0b:ce:97:e1:ac:0f:36:db:5a:f4:58:da:
f3:36:36:4e:ec:bf:1f:a2:7b:44:4b:64:b4:d8:12:de:ff:8e:
cc:90:a2:cd:c9:f4:78:d2:ae:87:5f:dd:f4:18:8e:ae:db:c9:
41:17:46:50:37:78:93:92:5a:7e:31:57:ac:c6:79:84:11:aa:
f9:de:06:51:86:9f:42:ce:68:18:e5:df:c0:de:ab:78:8d:67:
44:2d:4b:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTSRDaG25H11hZTgL8SAkwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyOGZhMWEyZTQ0OTE4OTFjMTliMGYxMGIwODZmNjU1OTg0
ZjU4NzkwHhcNMjUwNDIwMTMwMDE5WhcNMjUwNDIxMTMwMDE5WjAzMTEwLwYDVQQD
EygyZjc2ZDUzOWRmZjM1MzA1MGVmNWJhZWYwOTM5NWFiZTBmY2EyN2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdnOohlnjGrfQH0GiMZPrzVL6Ph1
docAnHEEYAchOxzBauEpkVTFeRljL+2zMfzCTPwJu/XPzoleYz5V6VelI1TvHt2k
He956u1lymvGo3H1RR9ZR0/t0A4wSnwJcst8Y5bFpsOI7+4lzi6+R7TIEnbIfQTm
gG3HasbSY8Wk/667zfSi1gM7jKQT8So1i4VKByGPOTwTHI8HtOhtZjLAHz2Gelnl
1vQbrm7E8xCXN8tvkYhROCByRg6yCBLJaAE/OgkQktBIapYdnS/d24M0IKv+xUdO
IfZhphw7VT4e1qyO3UR9YPA9ecR9zJg1M/0WGONWVyA1i5xM2xZrRe/fJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC921Tnf81MFDvW67wk5Wr4PyiezMB8GA1UdIwQY
MBaAFPKPoaLkSRiRwZsPELCG9lWYT1h5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTIt
MzRhMTRhMmJiNDAxLzEvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTItMzRhMTRhMmJiNDAx
LzEvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiIXeJXgL
zv85gxkz2cKBPLn0DSOeXxDxlgDTicAuh/s4tvYew2eapBh6oJuAUqItgVHY2JqO
5RX3bmF+Pan1eacu7VWK8lWHv/vZQOatZzwrV1pB/HC7jDaM+d93F3FDfLTn5soz
i5jem/ZyyQqRJqrzknyb+M34iLvM5DVifEWtMTC4XKoBQ9ZCAIe1UM0Mxp36BQSI
jk1qyelAATPMRZEMkUaYbFgLC86X4awPNtta9Fja8zY2Tuy/H6J7REtktNgS3v+O
zJCizcn0eNKuh1/d9BiOrtvJQRdGUDd4k5JafjFXrMZ5hBGq+d4GUYafQs5oGOXf
wN6reI1nRC1LnQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 18:57:49 2025 by rpki-client